CVE-2026-23948

Опубликовано: 09 фев. 2026

Источник: redhat

CVSS3: 5.3

Описание

FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.22.0, a NULL pointer dereference vulnerability in rdp_write_logon_info_v2() allows a malicious RDP server to crash FreeRDP proxy by sending a specially crafted LogonInfoV2 PDU with cbDomain=0 or cbUserName=0. This vulnerability is fixed in 3.22.0.

A null pointer dereference has been discovered in FreeRDP. A NULL pointer dereference vulnerability in rdp_write_logon_info_v2() allows a malicious RDP server to crash FreeRDP proxy by sending a specially crafted LogonInfoV2 PDU with cbDomain=0 or cbUserName=0.

Отчет

Availability impact is limited to the FreeRDP instance on Red Hat Products. General system availability is not at risk.

Меры по смягчению последствий

Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.

Затронутые пакеты

Платформа	Пакет	Состояние
Red Hat Enterprise Linux 10	freerdp	Affected
Red Hat Enterprise Linux 6	freerdp	Out of support scope
Red Hat Enterprise Linux 7	freerdp	Affected
Red Hat Enterprise Linux 8	freerdp	Affected
Red Hat Enterprise Linux 9	freerdp	Affected

Показывать по

Ссылки на источники

Дополнительная информация

Статус:

Moderate

Дефект:

CWE-476

https://bugzilla.redhat.com/show_bug.cgi?id=2438207freerdp: FreeRDP has a NULL Pointer Dereference in rdp_write_logon_info_v2()

5.3 Medium

CVSS3

Связанные уязвимости

CVE-2026-23948

CVSS3: 7.5

ubuntu

около 2 месяцев назад

CVE-2026-23948

CVSS3: 7.5

nvd

около 2 месяцев назад

CVE-2026-23948

CVSS3: 7.5

debian

около 2 месяцев назад

FreeRDP is a free implementation of the Remote Desktop Protocol. Prior ...

openSUSE-SU-2026:20339-1

suse-cvrf

18 дней назад

Security update for freerdp

5.3 Medium

CVSS3